$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231302e302f32342d3234203d3e203633363431.roa File: 3132332e34392e3231302e302f32342d3234203d3e203633363431.roa (raw, json) Hash identifier: brJUO545+OuB84araN7i7xz9jyMY2mzgXt4MKMUsS8M= Subject key identifier: 91:4C:DD:5A:8B:A2:AB:E6:3E:70:DD:17:8D:F2:B2:89:6E:62:BC:2F Certificate issuer: /CN=909D556251A0BE5F9234514028EBD37CE8E1280A Certificate serial: 10A8C29F5B1A5DA2E6DD0656A3362DBB21C3E26F Authority key identifier: 90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231302e302f32342d3234203d3e203633363431.roa Signing time: Wed 22 Apr 2026 14:17:21 +0000 ROA not before: Wed 22 Apr 2026 14:12:21 +0000 ROA not after: Wed 21 Apr 2027 14:17:21 +0000 asID: 63641 IP address blocks: 123.49.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 10:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:a8:c2:9f:5b:1a:5d:a2:e6:dd:06:56:a3:36:2d:bb:21:c3:e2:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=909D556251A0BE5F9234514028EBD37CE8E1280A Validity Not Before: Apr 22 14:12:21 2026 GMT Not After : Apr 21 14:17:21 2027 GMT Subject: CN=914CDD5A8BA2ABE63E70DD178DF2B2896E62BC2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8e:19:f8:36:a0:b0:36:7e:83:c4:94:83:ed: c6:52:0b:6e:8e:1e:23:78:c2:86:ec:12:ca:58:1d: 1c:20:f3:35:14:65:b3:85:60:2c:b7:80:ab:37:3f: e2:5f:d4:d1:69:43:c5:7f:30:4a:ba:8c:2b:94:a5: 20:a8:04:0a:04:b6:f3:12:f1:56:21:da:c7:7a:8c: c2:c0:01:b6:0c:4a:ef:62:06:18:ff:ab:12:b4:07: f0:6b:ca:64:24:53:74:81:01:6b:0e:eb:63:7e:93: 0e:83:7a:83:59:69:f8:04:49:c4:44:e8:f7:9c:95: 00:94:50:da:de:33:7f:27:94:9a:d2:09:9d:98:d5: e9:ed:f8:22:8d:d4:93:79:b9:b4:79:2d:aa:03:f2: 0e:ad:f1:da:42:b0:a7:71:e5:a4:fc:5e:bd:6c:b0: 14:a8:04:42:b0:55:54:3e:ee:d4:ca:46:e4:f4:f7: 90:69:a1:0e:24:7e:ea:0e:97:8a:57:90:84:da:10: fc:4f:35:d3:66:73:4b:cf:55:7f:b6:b6:30:92:44: 0b:b1:aa:89:4d:7f:ef:ec:da:5d:fa:01:28:f0:d4: 59:2c:34:c3:ab:48:fc:60:4b:f9:e0:00:55:4c:e4: 3e:c4:ac:26:5c:53:18:1a:93:81:3b:e9:20:08:e9: 3d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:4C:DD:5A:8B:A2:AB:E6:3E:70:DD:17:8D:F2:B2:89:6E:62:BC:2F X509v3 Authority Key Identifier: keyid:90:9D:55:62:51:A0:BE:5F:92:34:51:40:28:EB:D3:7C:E8:E1:28:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/909D556251A0BE5F9234514028EBD37CE8E1280A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/909D556251A0BE5F9234514028EBD37CE8E1280A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065582330346799105/0/3132332e34392e3231302e302f32342d3234203d3e203633363431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 123.49.210.0/24 Signature Algorithm: sha256WithRSAEncryption 19:ce:d4:0b:7f:97:29:45:ef:6a:8a:a4:b1:ad:95:51:6b:3a: 16:cf:22:fd:9a:63:b8:5b:f9:a2:c0:bc:82:bc:90:17:7e:c7: 1d:6d:a6:cf:bd:d9:a6:95:cc:e5:d2:f0:5d:9e:14:fa:ff:18: ad:bb:b0:03:90:99:84:cf:2d:6f:20:e0:11:58:f0:2e:f2:d5: 52:60:18:9c:dd:dc:5e:08:15:8c:6e:ec:8e:83:78:73:31:15: 55:85:78:f3:39:8a:fa:56:f3:1a:d0:ef:98:84:d3:d6:6a:55: 53:d2:db:3e:29:4e:80:4b:60:46:e5:0b:a2:be:50:0e:50:6d: 34:6e:9a:ef:17:84:e7:a8:c0:b7:6f:f1:f2:cf:c4:8e:3b:83: 2e:5a:d2:58:e2:37:6e:cc:de:13:8e:ef:bc:ea:ec:0f:14:98: 55:8f:a5:28:ad:8a:d5:f5:6d:69:d3:50:9d:7a:ce:3c:96:d4: cb:4b:b6:23:8f:12:8e:f5:28:99:7f:c2:b0:d2:98:b9:ee:e3: 16:92:a8:ac:a8:8e:00:49:00:3e:be:e2:7f:72:7e:34:58:7d: a2:37:4a:6e:f4:37:e6:0c:e9:9a:4c:f7:c3:7b:ce:85:88:ee: 2b:e3:dd:e2:4b:a0:25:c5:5d:66:f4:79:eb:20:d4:ba:37:b4: 05:5d:89:66 -----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIUEKjCn1saXaLm3QZWozYtuyHD4m8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NF OEUxMjgwQTAeFw0yNjA0MjIxNDEyMjFaFw0yNzA0MjExNDE3MjFaMDMxMTAvBgNV BAMTKDkxNENERDVBOEJBMkFCRTYzRTcwREQxNzhERjJCMjg5NkU2MkJDMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqjhn4NqCwNn6DxJSD7cZSC26O HiN4wobsEspYHRwg8zUUZbOFYCy3gKs3P+Jf1NFpQ8V/MEq6jCuUpSCoBAoEtvMS 8VYh2sd6jMLAAbYMSu9iBhj/qxK0B/BrymQkU3SBAWsO62N+kw6DeoNZafgEScRE 6PeclQCUUNreM38nlJrSCZ2Y1ent+CKN1JN5ubR5LaoD8g6t8dpCsKdx5aT8Xr1s sBSoBEKwVVQ+7tTKRuT095BpoQ4kfuoOl4pXkITaEPxPNdNmc0vPVX+2tjCSRAux qolNf+/s2l36ASjw1FksNMOrSPxgS/ngAFVM5D7ErCZcUxgak4E76SAI6T1tAgMB AAGjggIUMIICEDAdBgNVHQ4EFgQUkUzdWouiq+Y+cN0XjfKyiW5ivC8wHwYDVR0j BBgwFoAUkJ1VYlGgvl+SNFFAKOvTfOjhKAowDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU4MjMzMDM0Njc5OTEwNS8wLzkwOUQ1NTYyNTFBMEJFNUY5MjM0NTE0MDI4RUJE MzdDRThFMTI4MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvOTA5RDU1NjI1MUEwQkU1RjkyMzQ1MTQwMjhFQkQzN0NFOEUxMjgwQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS1ycHMu Y25uaWMuY24vcmVwby9BMTA2NTU4MjMzMDM0Njc5OTEwNS8wLzMxMzIzMzJlMzQz OTJlMzIzMTMwMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMzM2MzQzMS5yb2Ew GAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAHsx0jANBgkqhkiG9w0BAQsFAAOCAQEAGc7UC3+XKUXvaoqksa2VUWs6 Fs8i/ZpjuFv5osC8gryQF37HHW2mz73ZppXM5dLwXZ4U+v8YrbuwA5CZhM8tbyDg EVjwLvLVUmAYnN3cXggVjG7sjoN4czEVVYV48zmK+lbzGtDvmITT1mpVU9LbPilO gEtgRuULor5QDlBtNG6a7xeE56jAt2/x8s/EjjuDLlrSWOI3bszeE47vvOrsDxSY VY+lKK2K1fVtadNQnXrOPJbUy0u2I48SjvUomX/CsNKYue7jFpKorKiOAEkAPr7i f3J+NFh9ojdKbvQ35gzpmkz3w3vOhYjuK+Pd4kugJcVdZvR56yDUuje0BV2JZg== -----END CERTIFICATE-----Generated at Mon Apr 27 11:06:28 2026 by rpki-client